Here is a guide on the quarantine system in Microsoft 365. The email quarantine is a secure location where emails that are automatically flagged as suspicious get sent. These automatically flagged emails can be quarantined for reasons including suspected phishing, malware, or spam.

Occasionally, you may have a legitimate email that gets falsely flagged and sent to quarantine. Luckily, it is easy to retrieve an email that was incorrectly quarantined. You can view your account's quarantine by clicking this link and logging in using your @runza.com email. Alternatively, you will periodically receive an email notification to warn you that you have emails waiting in quarantine. If you do not take action on these emails before their expiration date, they will be deleted.

The Quarantine Notification Email

When you have emails in your quarantine, after some time you will receive an email that looks like this:

When you receive this, it will show a list of quarantined messages in your account. For each message, you have the following options:

• Review Message: This will take you to the 365 Defender website where you will see a summary of the message details.
• Request Release: This will send a request to have the message removed from your quarantine and sent to your inbox as normal. Only choose this option if you are sure it is a legitimate email!
• Block Sender: If you are sure the email was flagged correctly, you can choose to block emails from the corresponding sender.

365 Defender Quarantine Page

To see a list of all emails sent to your address that have been quarantined, you can access the quarantine page here:

https://security.microsoft.com/quarantine

 This will show a list of emails quarantined. You can select various actions for whichever emails you select, including release, deny, delete, or preview. You can also choose to block emails from the sender if you wish. Each column in the list shows important information including the time received, subject, sender, and the reason that the message was quarantined.

Most Common Signs Of Phishing

If you are going to release an email that was flagged as a phish, it is very important that you are 100% sure it is legitimate! If you are unsure, you can contact the IT helpdesk to help you. As a general rule of thumb, here are some of the common signs that an email is a phish:

• Suspicious or unofficial looking sender address
• Highly urgent tone or warning
• Asking for sensitive information (including accounts/passwords - this is probably the biggest indicator)
• Links to forms for data entry or unfamiliar websites
• Grammar and spelling errors
• Unfamiliar names
• Misleading subject lines
• Often representing a company or organization you trust and work with - this can include banks, credit card companies, schools, government agencies, etc.

Phishing emails are among the most common security attack methods. Due to their nature of friendly or trustworthy appearance, they are often hard to detect, especially automatically. It is very important to be skeptical of all emails that exhibit any of the previously mentioned signs. Be careful!